URLhaus Database

You are currently viewing the URLhaus database entry for http://yokmak.club/xx1.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	408186
URL:	http://yokmak.club/xx1.exe
URL Status:	Offline
Host:	yokmak.club
Date added:	2020-07-06 08:21:34 UTC
Last online:	2020-07-17 15:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	vxvault
Abuse complaint sent (?):	Yes (2020-07-06 08:22:02 UTC to abuse{at}server-panel[dot]net)
Takedown time:	11 days, 7 hours, 23 minutes (down since 2020-07-17 15:45:35 UTC)
Tags:	AgentTesla ArkeiStealer NetSupport RaccoonStealer RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-17	n/a	exe	0364bc29c9f6adbcbc56f550c818629c897a530ccc7dc1ea45d849096054faf2	24.66%
2020-07-16	n/a	exe	800abbe14af9edb3af0220db0053910a032f38c94155f2b15f22e07cdfdc6795	n/a
2020-07-16	n/a	exe	2c58e8f8da6520eb003b72ca54bd612cf87de8912cfdab65b54a270d70bdf0fc	n/a
2020-07-16	n/a	exe	4b794562bf54a9d6cb345622ae6fcbfe8b7d4a58ae14e2196feed52dca06b7e2	n/a
2020-07-15	n/a	exe	550b4b3c85d829bedadee9cec5a1e3350c0a3a0e2c66c6e6a9c7b63545236e35	26.03%
2020-07-15	n/a	exe	a85cd89c706de58c539bc3cd8f272afde7a1f6a1c195d6b6d97f3df433c6f905	n/a
2020-07-14	n/a	exe	09b3b10192d394693e2347cb5df136354378a5abc673c755ca7a1ce5abc32090	n/a	NetSupport
2020-07-14	n/a	exe	520772520e45f59f0dd7731dde564bebd9954f6344057fe4504ca9a23a71edc9	n/a
2020-07-14	n/a	exe	87be55f10639a69de02f0c0d3f3586d1c1afa6140f16411b233ab852e49bc1a3	22.22%
2020-07-14	n/a	exe	2170c7caf75f376cb77763950a71ebcc4a281a0efb94d86b1e12dd8496ef2dcb	n/a	RaccoonStealer
2020-07-13	n/a	exe	931ee405f5422a1dfb119eff37ed4b2ca3e55d3ae6673d8d5ea8a23bf6a1fe25	n/a
2020-07-13	n/a	exe	3055010984e8a9a398e08630b106a271cd0699ff960b342f9b7fdec253872f45	n/a	RedLineStealer
2020-07-13	n/a	exe	8d3d7055593e2bcbf92079e2882d5b7345a668700e71ae5ca64ad9673243c504	5.56%
2020-07-13	n/a	exe	ad85539b68d237ad62dfcb21ecc610dae752235b76198371c086e0ca196a7b8e	n/a	ArkeiStealer
2020-07-13	n/a	exe	ad85539b68d237ad62dfcb21ecc610dae752235b76198371c086e0ca196a7b8e	n/a	ArkeiStealer
2020-07-13	n/a	exe	c655f0c24956126ca407b915263187cc9a14433d8b8a5f60d553f26497cc9ed0	n/a
2020-07-13	n/a	exe	fa377574c99698cd65d8897d93e96c287dff271d4838107aeac36e7a843c1053	n/a
2020-07-12	n/a	exe	0284f36fa4b791fb35c73e2eecb061c391dc32e6015b5ca510d39c3878e66191	n/a
2020-07-12	n/a	exe	f127947e74ac74b4c441c0ef952e3b266d69d040eee7f22a45091ab1c0d50430	n/a
2020-07-12	n/a	exe	df7cf98d4b0342842b2b4ebe42e20022a0aa634c50369d12465fb7ec5ebb6c50	n/a
2020-07-11	n/a	exe	a6d3a6c7dbe81ae783af44243a99704f1f6e56ffea53e9319fce1b5698732ead	n/a
2020-07-11	n/a	exe	cadec79cc1febbce179e0fae319c2ee08993548c40f08613080c11ed983a84de	n/a
2020-07-11	n/a	exe	1851eb711469c046060e7e0232c86274d2afa002ec4a9838e6b6f7ce223da141	n/a
2020-07-11	n/a	exe	21e9b0b12f46b78022d10149aae153308bc67a892cb2c92805a3ec6bf6f07636	n/a	RaccoonStealer
2020-07-11	n/a	exe	84e3e9b562ae0f670674c5c0f5f6823659cb5443ce5728815f1a61a2bae0fe44	n/a
2020-07-10	n/a	exe	f9ab391e87c7a941c11359e6016ea20d2b3329ce97f69607ff335c764be9e23d	n/a
2020-07-10	n/a	exe	639b6a5672c670449760bf678db75c80c1d673f1ae46ae705b5b40cb5c6b7389	n/a
2020-07-10	n/a	exe	e4860745033946ff3ad20c3bf82fd074856947366d41eb7386fb8a3ee97e388e	n/a
2020-07-10	n/a	exe	1c54dac6dbe807e3ba1387a62921de340048e51ea1e6ee09a81d0cdc0fd62732	n/a
2020-07-10	n/a	exe	95129ce014d0264688c32aaddf7707ec591f6be1335f5cd67b44e9983b61da9b	n/a	RedLineStealer
2020-07-09	n/a	exe	2474c1ce1d299fd2234e7b10f6e464861151bf53e68f15a2a944dbeb56e5e0e9	n/a	RaccoonStealer
2020-07-09	n/a	exe	ab4ac34211c5e1a79705e87b5ad0e74a33fcf33054bc8a9d010b27c98e8e94b6	n/a
2020-07-09	n/a	exe	cfac75f3ee6ba6f7816e73908f679a7c185b12044580c1f6b0cbf41dfe74b0f7	n/a	RedLineStealer
2020-07-09	n/a	exe	a9277e3c749f19c582236546404bcaea9138c1b4feae722d5d08896edd1bd4ae	22.22%
2020-07-08	n/a	exe	4506f6ade8adb9658f2b5518b8b818de3c6783c234e99f5c44896c31029f95fe	n/a
2020-07-06	n/a	exe	bf2efbd13ace8761d0ff1d9e0952bbacb4c403a0e91d76d0b2cd65b838b4c0a6	n/a	AgentTesla